security - OpenGrok history log for /openbmc/docs/security

Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
85706020	04-Jun-2024	Andrew Geissler <geissonator@yahoo.com>	update formatting for new markdown rules Something got updated in the docker container that has some new rules on document formatting. Change-Id: I5b8d3cdc04458845a22d1e898dfbbd7538f68f69 Signed-of update formatting for new markdown rules Something got updated in the docker container that has some new rules on document formatting. Change-Id: I5b8d3cdc04458845a22d1e898dfbbd7538f68f69 Signed-off-by: Andrew Geissler <geissonator@yahoo.com> show more ... /openbmc/docs/.markdownlint.yaml /openbmc/docs/.prettierrc.yaml /openbmc/docs/CONTRIBUTING.md /openbmc/docs/OWNERS /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/SECURITY.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/code-update/code-update.md /openbmc/docs/architecture/code-update/emmc-storage-design.md /openbmc/docs/architecture/code-update/flash-layout.md /openbmc/docs/architecture/interface-overview.md /openbmc/docs/architecture/openbmc-systemd.md /openbmc/docs/architecture/optionality.md /openbmc/docs/architecture/user-management.md /openbmc/docs/community-membership.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/bmc-health-monitor.md /openbmc/docs/designs/code-update.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/expired-password.md /openbmc/docs/designs/external-sensor.md /openbmc/docs/designs/oem/ibm/OWNERS /openbmc/docs/designs/physical-topology.md /openbmc/docs/designs/psu-firmware-update.md /openbmc/docs/designs/redfish-spdm-attestation.md /openbmc/docs/designs/sol-sysrq.md /openbmc/docs/designs/vpd-collection.md /openbmc/docs/development/README.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/devtool-hello-world.md /openbmc/docs/discord-rules.md /openbmc/docs/features.md /openbmc/docs/process/subproject-maintainership.md /openbmc/docs/rest-api.md how-to-report-a-security-vulnerability.md network-security-considerations.md obmc-github-security-advisory-template.md obmc-security-response-team-guidelines.md /openbmc/docs/style/c/.clang-format /openbmc/docs/style/cpp/.clang-format /openbmc/docs/style/cpp/.clang-tidy /openbmc/docs/tof/membership-and-voting.md
735d3187	13-Feb-2023	Gunnar Mills <gmills@us.ibm.com>	TLS-configuration: Fix Content-Type spelling Spelled Content-Type: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Type Without this change going to think it is a different header TLS-configuration: Fix Content-Type spelling Spelled Content-Type: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Type Without this change going to think it is a different header. ``` > ContentType:application/json > Content-Length: 48 > Content-Type: application/x-www-form-urlencoded ``` Change-Id: Iceba2b53be5ec8ce1f0058d133af6906a9687b6a Signed-off-by: Gunnar Mills <gmills@us.ibm.com> show more ... TLS-configuration.md
1b2e9272	13-Feb-2023	Gunnar Mills <gmills@us.ibm.com>	TLS configuration: Add Content-Type Redfish and HTTP rule. Better if correct everywhere. bmcweb is attempting to validate content-type header, https://gerrit.openbmc.org/c/openbmc/bmcweb/+/59941. TLS configuration: Add Content-Type Redfish and HTTP rule. Better if correct everywhere. bmcweb is attempting to validate content-type header, https://gerrit.openbmc.org/c/openbmc/bmcweb/+/59941. Change-Id: Ic51d9308e11c34771d1e2298cebc488951bc6dc3 Signed-off-by: Gunnar Mills <gmills@us.ibm.com> show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/object-mapper.md /openbmc/docs/designs/power-recovery.md /openbmc/docs/release/metrics/2022-07 /openbmc/docs/release/metrics/2022-08 /openbmc/docs/release/metrics/2022-09 /openbmc/docs/release/metrics/2022-10 /openbmc/docs/release/metrics/2022-11 /openbmc/docs/release/metrics/2022-12 TLS-configuration.md
f4febd00	08-Dec-2022	Patrick Williams <patrick@stwcx.xyz>	prettier: re-format Prettier is enabled in openbmc-build-scripts on Markdown, JSON, and YAML files to have consistent formatting for these file types. Re-run the formatter on the whole repository. prettier: re-format Prettier is enabled in openbmc-build-scripts on Markdown, JSON, and YAML files to have consistent formatting for these file types. Re-run the formatter on the whole repository. Change-Id: I35ec9c19ae581e4dd00b515c1bba3a9c1862eeb1 Signed-off-by: Patrick Williams <patrick@stwcx.xyz> show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/IPMITOOL-cheatsheet.md /openbmc/docs/README.md /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/SECURITY.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/LED-architecture.md /openbmc/docs/architecture/code-update/code-update-deprecated.md /openbmc/docs/architecture/code-update/code-update-diagrams.md /openbmc/docs/architecture/code-update/code-update.md /openbmc/docs/architecture/code-update/emmc-storage-design.md /openbmc/docs/architecture/code-update/firmware-update-over-redfish.md /openbmc/docs/architecture/code-update/flash-layout.md /openbmc/docs/architecture/code-update/host-code-update.md /openbmc/docs/architecture/interface-overview.md /openbmc/docs/architecture/ipmi-architecture.md /openbmc/docs/architecture/object-mapper.md /openbmc/docs/architecture/openbmc-systemd.md /openbmc/docs/architecture/redfish-logging-in-bmcweb.md /openbmc/docs/architecture/sensor-architecture.md /openbmc/docs/architecture/user-management.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-of-conduct.md /openbmc/docs/console.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/README.md /openbmc/docs/designs/binarystore-via-blobs.md /openbmc/docs/designs/bios-bmc-smm-error-logging.md /openbmc/docs/designs/bmc-boot-ready.md /openbmc/docs/designs/bmc-health-monitor.md /openbmc/docs/designs/bmc-reset-with-host-up.md /openbmc/docs/designs/bmc-service-failure-debug-and-recovery.md /openbmc/docs/designs/boot-progress.md /openbmc/docs/designs/certificate-revocation-list.md /openbmc/docs/designs/ci-authorization.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/device-tree-gpio-naming.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/ecc-dbus-sel.md /openbmc/docs/designs/error-log-handling-for-phal.md /openbmc/docs/designs/estoraged.md /openbmc/docs/designs/expired-password.md /openbmc/docs/designs/external-sensor.md /openbmc/docs/designs/fail-boot-on-hw-error.md /openbmc/docs/designs/firmware-update-via-blobs.md /openbmc/docs/designs/firmware-update-via-usb.md /openbmc/docs/designs/gpio-based-cable-presence.md /openbmc/docs/designs/guard-on-bmc.md /openbmc/docs/designs/hw-fault-monitor.md /openbmc/docs/designs/management-console/Authorities_List_Management.md /openbmc/docs/designs/management-console/VMI_Certificate_Exchange.md /openbmc/docs/designs/management-console/service-discovery.md /openbmc/docs/designs/mctp/mctp-kernel.md /openbmc/docs/designs/mctp/mctp-userspace.md /openbmc/docs/designs/mctp/mctp.md /openbmc/docs/designs/multi-host-postcode.md /openbmc/docs/designs/multihost-ipmi-design.md /openbmc/docs/designs/multihost-phosphor-buttons.md /openbmc/docs/designs/nmi-dbus-interface.md /openbmc/docs/designs/nvmemi-over-smbus.md /openbmc/docs/designs/oem/google/root_of_trust.md /openbmc/docs/designs/oem/ibm/OWNERS /openbmc/docs/designs/oem/ibm/system-power-mode.md /openbmc/docs/designs/phosphor-audit.md /openbmc/docs/designs/phosphor-hwmon-io-uring.md /openbmc/docs/designs/phosphor-hwmon-refactoring.md /openbmc/docs/designs/physical-topology.md /openbmc/docs/designs/pldm-stack.md /openbmc/docs/designs/power-recovery.md /openbmc/docs/designs/power-systems-memory-preserving-reboot.md /openbmc/docs/designs/psu-firmware-update.md /openbmc/docs/designs/psu-monitoring.md /openbmc/docs/designs/redfish-authorization.md /openbmc/docs/designs/redfish-eventservice.md /openbmc/docs/designs/redfish-health-rolllup.md /openbmc/docs/designs/redfish-pcie.md /openbmc/docs/designs/redfish-postcodes.md /openbmc/docs/designs/redfish-resource-supplement-for-pfr.md /openbmc/docs/designs/redfish-tls-user-authentication.md /openbmc/docs/designs/remote-bios-configuration.md /openbmc/docs/designs/state-management-and-external-interfaces.md /openbmc/docs/designs/target-fail-monitoring.md /openbmc/docs/designs/telemetry.md /openbmc/docs/designs/thermal-control-modes.md /openbmc/docs/designs/unique-hostname.md /openbmc/docs/designs/virtual-media.md /openbmc/docs/designs/virtual-sensors.md /openbmc/docs/designs/voltage-regulator-configuration.md /openbmc/docs/designs/vpd-collection.md /openbmc/docs/development/README.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/development/sdk-hello-world.md /openbmc/docs/development/web-ui.md /openbmc/docs/features.md /openbmc/docs/glossary.md /openbmc/docs/host-management.md /openbmc/docs/kernel-development.md /openbmc/docs/maintainer-workflow.md /openbmc/docs/meta-layer-guidelines.md /openbmc/docs/openbmc-conversion.md /openbmc/docs/release/release-notes.md /openbmc/docs/release/release-process.md /openbmc/docs/rest-api.md TLS-configuration.md how-to-report-a-security-vulnerability.md network-security-considerations.md obmc-github-security-advisory-template.md obmc-security-response-team-guidelines.md obmc-security-response-team.md /openbmc/docs/subtree.md /openbmc/docs/testing/local-ci-build.md /openbmc/docs/testing/run-test-docker.md /openbmc/docs/tof/contract.md /openbmc/docs/tof/membership-and-voting.md /openbmc/docs/yocto-development.md
16e8d573	22-Sep-2022	Joseph Reynolds <joseph-reynolds@charter.net>	Add maintainer flow to create security advisories This enhances the security response guidelines with process steps for repo maintainers to create new security advisories, and provides guidance for Add maintainer flow to create security advisories This enhances the security response guidelines with process steps for repo maintainers to create new security advisories, and provides guidance for what to put into the advisory. Signed-off-by: Joseph Reynolds <joseph-reynolds@charter.net> Change-Id: Icc3f737d0d845d651eaf70853ed55529dacf7a93 show more ... /openbmc/docs/IPMITOOL-cheatsheet.md /openbmc/docs/OWNERS /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/cheatsheet.md /openbmc/docs/designs/bios-bmc-smm-error-logging.md /openbmc/docs/designs/mctp/mctp-userspace.md /openbmc/docs/designs/oem/ibm/system-power-mode.md /openbmc/docs/designs/physical-topology.md /openbmc/docs/designs/redfish-authorization.md /openbmc/docs/development/add-new-system.md obmc-github-security-advisory-template.md obmc-security-response-team-guidelines.md /openbmc/docs/style/cpp/.clang-format /openbmc/docs/tof/membership-and-voting.md /openbmc/docs/yocto-development.md
106b09c1	27-Jul-2022	Joseph Reynolds <joseph-reynolds@charter.net>	Use github security advisories This updates the OpenBMC security vulnerability reporting process to use GitHub advisories. Each repository owner/maintainer is responsible for their security problem Use github security advisories This updates the OpenBMC security vulnerability reporting process to use GitHub advisories. Each repository owner/maintainer is responsible for their security problems, and the security response team advises and creates CVEs. Signed-off-by: Joseph Reynolds <joseph-reynolds@charter.net> Change-Id: Ic9e169b4c94b625c9af838ef0c03c78fa0300031 show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/OWNERS /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/interface-overview.md /openbmc/docs/designs/bios-bmc-smm-error-logging.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/power-recovery.md /openbmc/docs/designs/virtual-media.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/features.md /openbmc/docs/release/metrics/2022-04 /openbmc/docs/release/metrics/2022-05 /openbmc/docs/release/metrics/2022-06 how-to-report-a-security-vulnerability.md obmc-security-response-team-guidelines.md obmc-security-response-team.md
a6c7ed04	21-Jun-2022	Gunnar Mills <gmills@us.ibm.com>	security: Replace phosphor-webui with webui-vue webui-vue is a modern replacement for phosphor-webui. Overall the community has already moved to webui-vue. Replace references to phosphor-webui with security: Replace phosphor-webui with webui-vue webui-vue is a modern replacement for phosphor-webui. Overall the community has already moved to webui-vue. Replace references to phosphor-webui with webui-vue. Some reasons why webui-vue is preferred over phosphor-webui: phosphor-webui uses AngularJS which has gone End of Life. phosphor-webui uses the REST D-BUS API which has been disabled by default. webui-vue has additional features. Change-Id: Ieb027814e226c9d7db8edbf2ca64da26e697fd16 Signed-off-by: Gunnar Mills <gmills@us.ibm.com> show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/OWNERS /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/SECURITY.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/code-update/emmc-storage-design.md /openbmc/docs/architecture/code-update/firmware-update-over-redfish.md /openbmc/docs/architecture/sensor-architecture.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/README.md /openbmc/docs/designs/binarystore-via-blobs.md /openbmc/docs/designs/bmc-health-monitor.md /openbmc/docs/designs/bmc-reset-with-host-up.md /openbmc/docs/designs/bmc-service-failure-debug-and-recovery.md /openbmc/docs/designs/boot-progress.md /openbmc/docs/designs/certificate-revocation-list.md /openbmc/docs/designs/ci-authorization.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/device-tree-gpio-naming.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/ecc-dbus-sel.md /openbmc/docs/designs/error-log-handling-for-phal.md /openbmc/docs/designs/estoraged.md /openbmc/docs/designs/expired-password.md /openbmc/docs/designs/external-sensor.md /openbmc/docs/designs/fail-boot-on-hw-error.md /openbmc/docs/designs/firmware-update-via-blobs.md /openbmc/docs/designs/firmware-update-via-usb.md /openbmc/docs/designs/gpio-based-cable-presence.md /openbmc/docs/designs/hw-fault-monitor.md /openbmc/docs/designs/ibm/system-power-mode.md /openbmc/docs/designs/management-console/Authorities_List_Management.md /openbmc/docs/designs/management-console/VMI_Certificate_Exchange.md /openbmc/docs/designs/management-console/service-discovery.md /openbmc/docs/designs/mctp/mctp.md /openbmc/docs/designs/multihost-ipmi-design.md /openbmc/docs/designs/multihost-phosphor-buttons.md /openbmc/docs/designs/nmi-dbus-interface.md /openbmc/docs/designs/nvmemi-over-smbus.md /openbmc/docs/designs/oem/google/root_of_trust.md /openbmc/docs/designs/phosphor-audit.md /openbmc/docs/designs/phosphor-hwmon-io-uring.md /openbmc/docs/designs/pldm-stack.md /openbmc/docs/designs/power-recovery.md /openbmc/docs/designs/power-systems-memory-preserving-reboot.md /openbmc/docs/designs/psu-firmware-update.md /openbmc/docs/designs/psu-monitoring.md /openbmc/docs/designs/redfish-eventservice.md /openbmc/docs/designs/redfish-health-rolllup.md /openbmc/docs/designs/redfish-pcie.md /openbmc/docs/designs/redfish-postcodes.md /openbmc/docs/designs/redfish-resource-supplement-for-pfr.md /openbmc/docs/designs/redfish-tls-user-authentication.md /openbmc/docs/designs/remote-bios-configuration.md /openbmc/docs/designs/state-management-and-external-interfaces.md /openbmc/docs/designs/target-fail-monitoring.md /openbmc/docs/designs/telemetry.md /openbmc/docs/designs/thermal-control-modes.md /openbmc/docs/designs/unique-hostname.md /openbmc/docs/designs/virtual-media.md /openbmc/docs/designs/virtual-sensors.md /openbmc/docs/designs/voltage-regulator-configuration.md /openbmc/docs/designs/vpd-collection.md /openbmc/docs/development/README.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/meta-layer-guidelines.md /openbmc/docs/release/metrics/2021-10 /openbmc/docs/release/metrics/2021-11 /openbmc/docs/release/metrics/2021-12 /openbmc/docs/release/metrics/2022-01 /openbmc/docs/release/metrics/2022-02 /openbmc/docs/release/metrics/2022-03 network-security-considerations.md /openbmc/docs/style/cpp/.clang-format /openbmc/docs/testing/local-ci-build.md /openbmc/docs/tof/contract.md /openbmc/docs/tof/membership-and-voting.md
94687a16	24-Nov-2021	Patrick Williams <patrick@stwcx.xyz>	TLS-configuration: fix typo Reported on openbmc/docs#59. Author hasn't moved to Gerrit in over 6 months and it is a trivial change. Signed-off-by: Patrick Williams <patrick@stwcx.xyz> Change-Id: I TLS-configuration: fix typo Reported on openbmc/docs#59. Author hasn't moved to Gerrit in over 6 months and it is a trivial change. Signed-off-by: Patrick Williams <patrick@stwcx.xyz> Change-Id: I0550c7414539d1e305fa309824f83efb7adff54d show more ... /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/gpio-based-cable-presence.md TLS-configuration.md /openbmc/docs/style/cpp/.clang-format
5fa97051	02-Sep-2021	Joseph Reynolds <joseph-reynolds@charter.net>	Security response team membership guidelines This better articulates the guidelines for who should be on the security response team and clarifies that membership is based on participating organizati Security response team membership guidelines This better articulates the guidelines for who should be on the security response team and clarifies that membership is based on participating organizations. Signed-off-by: Joseph Reynolds <joseph-reynolds@charter.net> Change-Id: Ia331bf1dec4e75b86d448561c82f4096c9a17c12 show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/OWNERS /openbmc/docs/designs/device-tree-gpio-naming.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/estoraged.md /openbmc/docs/designs/power-recovery.md /openbmc/docs/maintainer-workflow.md /openbmc/docs/release/metrics/2021-09 obmc-security-response-team-guidelines.md /openbmc/docs/style/json/.eslintrc.json /openbmc/docs/tof/contract.md /openbmc/docs/tof/membership-and-voting.md
b685fd04	07-Sep-2021	John Edward Broadbent <jebr@google.com>	Adds package requirements to Common mistakes I made this mistake, and would like to update the documentation accordingly. Signed-off-by: John Edward Broadbent <jebr@google.com> Change-Id: Ic0c477c6 Adds package requirements to Common mistakes I made this mistake, and would like to update the documentation accordingly. Signed-off-by: John Edward Broadbent <jebr@google.com> Change-Id: Ic0c477c62881a04ef731a5dc3827cfabad84cd32 show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/IPMITOOL-cheatsheet.md /openbmc/docs/MAINTAINERS /openbmc/docs/Makefile /openbmc/docs/OWNERS /openbmc/docs/README.md /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/LED-architecture.md /openbmc/docs/architecture/code-update/code-update-deprecated.md /openbmc/docs/architecture/code-update/code-update-diagrams.md /openbmc/docs/architecture/code-update/code-update.md /openbmc/docs/architecture/code-update/emmc-storage-design.md /openbmc/docs/architecture/code-update/firmware-update-over-redfish.md /openbmc/docs/architecture/code-update/flash-layout.md /openbmc/docs/architecture/code-update/host-code-update.md /openbmc/docs/architecture/interface-overview.md /openbmc/docs/architecture/object-mapper.md /openbmc/docs/architecture/openbmc-systemd.md /openbmc/docs/architecture/sensor-architecture.md /openbmc/docs/architecture/user-management.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-of-conduct.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/bmc-health-monitor.md /openbmc/docs/designs/bmc-reset-with-host-up.md /openbmc/docs/designs/bmc-service-failure-debug-and-recovery.md /openbmc/docs/designs/boot-progress.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/device-tree-gpio-naming.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/error-log-handling-for-phal.md /openbmc/docs/designs/external-sensor.md /openbmc/docs/designs/fail-boot-on-hw-error.md /openbmc/docs/designs/gpio-based-cable-presence.md /openbmc/docs/designs/guard-on-bmc.md /openbmc/docs/designs/ibm/system-power-mode.md /openbmc/docs/designs/management-console/VMI_Certificate_Exchange.md /openbmc/docs/designs/management-console/service-discovery.md /openbmc/docs/designs/mctp/mctp-kernel.md /openbmc/docs/designs/mctp/mctp-standards.svg /openbmc/docs/designs/mctp/mctp-userspace.md /openbmc/docs/designs/mctp/mctp.md /openbmc/docs/designs/multi-host-postcode.md /openbmc/docs/designs/multihost-ipmi-design.md /openbmc/docs/designs/oem/google/root_of_trust.md /openbmc/docs/designs/phosphor-audit.md /openbmc/docs/designs/phosphor-hwmon-io-uring.md /openbmc/docs/designs/pldm-stack.md /openbmc/docs/designs/psu-firmware-update.md /openbmc/docs/designs/psu-monitoring.md /openbmc/docs/designs/redfish-health-rolllup.md /openbmc/docs/designs/redfish-resource-supplement-for-pfr.md /openbmc/docs/designs/remote-bios-configuration.md /openbmc/docs/designs/telemetry.md /openbmc/docs/designs/virtual-media.md /openbmc/docs/designs/virtual-sensors.md /openbmc/docs/designs/voltage-regulator-configuration.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/development/sdk-hello-world.md /openbmc/docs/development/web-ui.md /openbmc/docs/features.md /openbmc/docs/host-management.md /openbmc/docs/logo/BuiltOnOpenBMC.svg /openbmc/docs/logo/OpenBMC-Logo2.svg /openbmc/docs/maintainer-workflow.md /openbmc/docs/meta-layer-guidelines.md /openbmc/docs/release/metrics/2019-11 /openbmc/docs/release/metrics/2019-12 /openbmc/docs/release/metrics/2020-01 /openbmc/docs/release/metrics/2020-02 /openbmc/docs/release/metrics/2020-03 /openbmc/docs/release/metrics/2020-04 /openbmc/docs/release/metrics/2020-05 /openbmc/docs/release/metrics/2020-06 /openbmc/docs/release/metrics/2020-07 /openbmc/docs/release/metrics/2020-08 /openbmc/docs/release/metrics/2020-09 /openbmc/docs/release/metrics/2020-10 /openbmc/docs/release/metrics/2020-11 /openbmc/docs/release/metrics/2020-12 /openbmc/docs/release/metrics/2021-01 /openbmc/docs/release/metrics/2021-02 /openbmc/docs/release/metrics/2021-03 /openbmc/docs/release/metrics/2021-04 /openbmc/docs/release/metrics/2021-05 /openbmc/docs/release/metrics/2021-06 /openbmc/docs/release/metrics/2021-07 /openbmc/docs/release/metrics/2021-08 /openbmc/docs/release/release-notes.md /openbmc/docs/release/release-process.md /openbmc/docs/rest-api.md TLS-configuration.md /openbmc/docs/style/cpp/.clang-format /openbmc/docs/subtree.md /openbmc/docs/testing/local-ci-build.md /openbmc/docs/userguide/userguide.tex
c6623b6f	13-May-2020	Zbigniew Kurzynski <zbigniew.kurzynski@intel.com>	Adding TLS authentication guidebook. This document is a guidebook for users that want to enable OpenBMC TLS authentication. It guides user step-by-step with option to copy-paste example commands, st Adding TLS authentication guidebook. This document is a guidebook for users that want to enable OpenBMC TLS authentication. It guides user step-by-step with option to copy-paste example commands, starting from certificate creation,through TLS enabling and ending on TLS authentication verification. Signed-off-by: Zbigniew Kurzynski <zbigniew.kurzynski@intel.com> Change-Id: I1ccbeb8e7ef77eb102a0b4ea771de092fbad2b5b show more ... /openbmc/docs/designs/binarystore-via-blobs.md /openbmc/docs/designs/dump-manager.md /openbmc/docs/designs/ecc-dbus-sel.md /openbmc/docs/designs/firmware-update-via-blobs.md /openbmc/docs/designs/management-console/service-discovery.md /openbmc/docs/designs/nmi-dbus-interface.md /openbmc/docs/designs/nvmemi-over-smbus.md /openbmc/docs/designs/redfish-health-rolllup.md /openbmc/docs/designs/thermal-control-modes.md /openbmc/docs/logo/OpenBMC-Logo.svg TLS-configuration.md /openbmc/docs/style/cpp/.clang-format
f4f57c0b	15-May-2020	Patrick Williams <patrick@stwcx.xyz>	architecture: rename files to dashes instead of underscores Signed-off-by: Patrick Williams <patrick@stwcx.xyz> Change-Id: I2a29242abb5b900a22e081c796f8a44273fd543f /openbmc/docs/architecture/user-management.md /openbmc/docs/features.md network-security-considerations.md
c33d11d6	07-May-2020	Milton Miller <miltonm@us.ibm.com>	network-security headline typo Fix misspelled acronynm in headline. A review in gedit spell check did not reveal other obvious typos. Change-Id: I425d18f28697b758e6b01cedaa6f8e9c3b6ca6dd Signed-of network-security headline typo Fix misspelled acronynm in headline. A review in gedit spell check did not reveal other obvious typos. Change-Id: I425d18f28697b758e6b01cedaa6f8e9c3b6ca6dd Signed-off-by: Milton Miller <miltonm@us.ibm.com> show more ... /openbmc/docs/anti-patterns.md /openbmc/docs/designs/device-tree-gpio-naming.md /openbmc/docs/designs/dump_manager.md /openbmc/docs/designs/power-systems-memory-preserving-reboot.md network-security-considerations.md
20433f04	10-Jan-2019	Joseph Reynolds <jrey@us.ibm.com>	Improve security response docs This improves the security response team docs This helps set submitter expectations and controls behavior. This clarifies that the decision to spread information abo Improve security response docs This improves the security response team docs This helps set submitter expectations and controls behavior. This clarifies that the decision to spread information about reported security vulnerabilities should be coordinated by security response team members, and sets critera for that decision. This corrects spelling errors. This calls for an email notification when a new security advisory is created. Change-Id: I48edb4e819beadf41da2011f63eb9a2ec3dd4ec9 Signed-off-by: Joseph Reynolds <joseph.reynolds1@ibm.com> show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/MAINTAINERS /openbmc/docs/README.md /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/anti-patterns.md /openbmc/docs/architecture/LED-architecture.md /openbmc/docs/architecture/openbmc-systemd.md /openbmc/docs/architecture/redfish-logging-in-bmcweb.md /openbmc/docs/architecture/user_management.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-of-conduct.md /openbmc/docs/code-update/code-update.md /openbmc/docs/code-update/flash-layout.md /openbmc/docs/code-update/host-code-update.md /openbmc/docs/designs/VirtualMedia.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/error-log-handling-for-phal.md /openbmc/docs/designs/fail-boot-on-hw-error.md /openbmc/docs/designs/management-console/service_discovery.md /openbmc/docs/designs/phosphor-audit.md /openbmc/docs/designs/psu-monitoring.md /openbmc/docs/designs/redfish-eventservice.md /openbmc/docs/designs/redfish-postcodes.md /openbmc/docs/designs/redfish-resource-supplement-for-pfr.md /openbmc/docs/designs/state-management-and-external-interfaces.md /openbmc/docs/designs/target-fail-monitoring.md /openbmc/docs/designs/telemetry.md /openbmc/docs/development/sdk-hello-world.md /openbmc/docs/features.md /openbmc/docs/host-management.md /openbmc/docs/rest-api.md how-to-report-a-security-vulnerability.md obmc-security-response-team-guidelines.md /openbmc/docs/style/cpp/.clang-format /openbmc/docs/testing/local-ci-build.md /openbmc/docs/testing/run-test-docker.md
676554db	17-Oct-2019	Gunnar Mills <gmills@us.ibm.com>	Move user_management.md under architecture/ Updated phosphor-dbus-interface reference here: https://gerrit.openbmc-project.xyz/c/openbmc/phosphor-dbus-interfaces/+/26261 Change-Id: I3e346c2ee17d762 Move user_management.md under architecture/ Updated phosphor-dbus-interface reference here: https://gerrit.openbmc-project.xyz/c/openbmc/phosphor-dbus-interfaces/+/26261 Change-Id: I3e346c2ee17d762eb3d20ddb27dc89927d11da38 Signed-off-by: Gunnar Mills <gmills@us.ibm.com> show more ... /openbmc/docs/architecture/user_management.md /openbmc/docs/features.md network-security-considerations.md
fb8d806a	17-Oct-2019	Gunnar Mills <gmills@us.ibm.com>	Move ipmi-architecture.md under architecture/ Change-Id: I99d105d61883a50c34de8530ff03b4031624f12b Signed-off-by: Gunnar Mills <gmills@us.ibm.com> /openbmc/docs/CONTRIBUTING.md /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/architecture/ipmi-architecture.md /openbmc/docs/architecture/object-mapper.md /openbmc/docs/architecture/sensor-architecture.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-update/code-update-diagrams.md /openbmc/docs/code-update/code-update.md /openbmc/docs/code-update/flash-layout.md /openbmc/docs/designs/emmc-storage-design.md /openbmc/docs/designs/expired-password.md /openbmc/docs/designs/firmware-update-over-redfish.md /openbmc/docs/designs/firmware_update_via_blobs.md /openbmc/docs/designs/nmi_dbus_interface.md /openbmc/docs/designs/phosphor-hwmon-refactoring.md /openbmc/docs/designs/pldm-stack.md /openbmc/docs/designs/psu-firmware-update.md /openbmc/docs/designs/psu-monitoring.md /openbmc/docs/designs/redfish-resource-supplement-for-pfr.md /openbmc/docs/designs/redfish-tls-user-authentication.md /openbmc/docs/designs/target-fail-monitoring.md /openbmc/docs/designs/voltage-regulator-configuration.md /openbmc/docs/designs/vpd-collection.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/features.md /openbmc/docs/host-management.md /openbmc/docs/release/release-notes.md network-security-considerations.md /openbmc/docs/testing/local-ci-build.md /openbmc/docs/testing/run-test-docker.md
2924bdc3	30-May-2019	Joseph Reynolds <jrey@us.ibm.com>	Docs: Document network security considerations This documents some OpenBMC network security considerations which aim to: describe network services provided by OpenBMC-based systems, some threats Docs: Document network security considerations This documents some OpenBMC network security considerations which aim to: describe network services provided by OpenBMC-based systems, some threats to the BMC from its network interfaces, and how OpenBMC addresses each threat. Use cases are for new developers, testers, security folks, and projects interested in using OpenBMC. Change-Id: Ie69ab15e395492c9c8ec8f6d0765f0f73aac4a28 Signed-off-by: Joseph Reynolds <joseph.reynolds1@ibm.com> show more ... /openbmc/docs/LED-architecture.md /openbmc/docs/README.md /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/anti-patterns.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-update/code-update-deprecated.md /openbmc/docs/code-update/code-update.md /openbmc/docs/console.md /openbmc/docs/designs/VirtualMedia.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/ecc_dbus_sel.md /openbmc/docs/designs/firmware-update-over-redfish.md /openbmc/docs/designs/firmware_update_via_blobs.md /openbmc/docs/designs/mctp-standards.svg /openbmc/docs/designs/mctp.md /openbmc/docs/designs/nvmemi_over_SMbus.md /openbmc/docs/designs/redfish-pcie.md /openbmc/docs/designs/redfish_health_rollup.md /openbmc/docs/designs/thermal_control_modes.md /openbmc/docs/designs/unique-hostname.md /openbmc/docs/development/README.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/features.md /openbmc/docs/host-management.md /openbmc/docs/ipmi-architecture.md /openbmc/docs/local-ci-build.md /openbmc/docs/maintainer-workflow.md /openbmc/docs/object-mapper.md /openbmc/docs/openbmc-systemd.md /openbmc/docs/redfish-logging-in-bmcweb.md /openbmc/docs/release/release-notes.md /openbmc/docs/release/release-process.md network-security-considerations.md /openbmc/docs/sensor-architecture.md /openbmc/docs/user_management.md
876953d3	11-Feb-2019	Gunnar Mills <gmills@us.ibm.com>	security-response-team: Capitalize Gerrit Change-Id: I30cb36b2d61f0e57cffeaebaca48623e9b1ba56d Signed-off-by: Gunnar Mills <gmills@us.ibm.com> /openbmc/docs/Makefile /openbmc/docs/REDFISH-cheatsheet.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/anti-patterns.md /openbmc/docs/code-of-conduct.md /openbmc/docs/designs/binarystore_via_blobs.md /openbmc/docs/designs/ci-authorization.md /openbmc/docs/designs/design-template.md /openbmc/docs/designs/firmware_update_via_blobs.md /openbmc/docs/designs/pldm-stack.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/gerrit-setup.md /openbmc/docs/glossary.md /openbmc/docs/host-management.md /openbmc/docs/kernel-development.md /openbmc/docs/maintainer-workflow.md /openbmc/docs/meetings/README.md /openbmc/docs/openbmc-systemd.md /openbmc/docs/release_notes.md /openbmc/docs/release_process.md /openbmc/docs/rest-api.md obmc-security-response-team-guidelines.md /openbmc/docs/sensor-architecture.md /openbmc/docs/user_management.md /openbmc/docs/userguide/userguide.tex
01e72e8a	26-Jul-2018	Joseph Reynolds <jrey@us.ibm.com>	Add how to handle private security vulnerabilities Adds two new documents: - "How to report a security vulnerability" says how to privately report a security vulnerability with the intention of g Add how to handle private security vulnerabilities Adds two new documents: - "How to report a security vulnerability" says how to privately report a security vulnerability with the intention of getting a fix before public disclosure. - "Security response team guidelines" is for the security response team and community members who are responding to privately disclosed problems and working to provide a fix. Change-Id: I83475bd4bfa014106ab5c3b50ad81e3488d06ba3 Signed-off-by: Joseph Reynolds <jrey@us.ibm.com> show more ... how-to-report-a-security-vulnerability.md obmc-security-response-team-guidelines.md
0a97a5d7	16-Jul-2018	Joseph Reynolds <jrey@us.ibm.com>	Create security vulnerability reporting mechanism This documents the process to privately report OpenBMC security vulnerabilities with the intention of giving time to the project to fix the problem Create security vulnerability reporting mechanism This documents the process to privately report OpenBMC security vulnerabilities with the intention of giving time to the project to fix the problem before public disclosure. This first commit establishes the project's scope. The next commit: - provides guidelines to the OpenBMC security response team as it works to address the security issues and disclose publicly - establishes the "How to report security vulnerabilities" web page to tell problem submitters what to include in their report and what to expect from the OpenBMC security response team Change-Id: Ib90070f998a815ba3f4430c7eb6ff84b3934e012 Signed-off-by: Joseph Reynolds <jrey@us.ibm.com> show more ... /openbmc/docs/CONTRIBUTING.md /openbmc/docs/LED-architecture.md /openbmc/docs/LICENSE /openbmc/docs/MAINTAINERS /openbmc/docs/Makefile /openbmc/docs/README.md /openbmc/docs/REST-cheatsheet.md /openbmc/docs/cheatsheet.md /openbmc/docs/code-update/code-update.md /openbmc/docs/code-update/host-code-update.md /openbmc/docs/code-update/ubi-code-update.md /openbmc/docs/console.md /openbmc/docs/cpp-style-and-conventions.md /openbmc/docs/designs/design-template.md /openbmc/docs/development/README.md /openbmc/docs/development/add-new-system.md /openbmc/docs/development/dev-environment.md /openbmc/docs/development/sdk-hello-world.md /openbmc/docs/development/web-ui.md /openbmc/docs/host-management.md /openbmc/docs/ipmi-architecture.md /openbmc/docs/kernel-development.md /openbmc/docs/logo/BuiltOnOpenBMC.svg /openbmc/docs/logo/OpenBMC_Logo.svg /openbmc/docs/maintainer-workflow.md /openbmc/docs/meetings/README /openbmc/docs/meetings/meetings.ics /openbmc/docs/meetings/meetings.yaml /openbmc/docs/object-mapper.md /openbmc/docs/openbmc-conversion.md /openbmc/docs/openbmc-systemd.md /openbmc/docs/rest-api.md /openbmc/docs/run-test-docker.md obmc-security-response-team.md /openbmc/docs/sensor-architecture.md /openbmc/docs/style/cpp/.clang-format /openbmc/docs/style/javascript/.clang-format /openbmc/docs/subtree.md /openbmc/docs/user_management.md /openbmc/docs/userguide/userguide.tex /openbmc/docs/yocto-development.md